Manifest
$ rpki-client -vvf rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
File: NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft (raw, json)
Hash identifier: Z21UbwAzlHtJXu+sLTglTIYUTKEPWiP3dyDWS4bq9Jo=
Subject key identifier: FF:B4:70:71:EC:64:09:C2:16:61:69:E8:21:8C:2A:0D:08:80:F7:C3
Authority key identifier: 34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
Certificate issuer: /CN=A90DC5BE/serialNumber=348F9B9B92A72CCFD36F3C70F35675733CC8EA22
Certificate serial: 4646
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
Subject info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
Manifest number: 459D
Signing time: Sat 29 Mar 2025 02:50:09 +0000
Manifest this update: Sat 29 Mar 2025 02:50:09 +0000
Manifest next update: Sat 05 Apr 2025 02:50:09 +0000
Files and hashes: 1: NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl (hash: gjqT+hTbHXeCEVinmOmWEb1LmfHM5tTAX39nNQCoXKw=)
2: CVjwl8rkKX3ycoLkGD468UJMj34.cer (hash: dIUmjSrIjTBexv9/ceLPC3WswXZRCQ+E7X3cPIrgsiw=)
3: yMD7hwR0w-hMq4NZfEaoYsR_iII.cer (hash: N0F8HE1OKVKKKHAEjBQrKcxyApq01oZoxtlct6NIs44=)
4: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer (hash: vp1tRoe4NsXHyQT0OHKIj2r+bs3aEldVk7YOXioMzPc=)
5: GHL5iLZXI3g3mSN-VU28xuSdFLA.cer (hash: EBPO+j383ZTZL3W25SBCuUDnWsryeNl/oCk3sCJDyPg=)
6: gf1WPMaGXeAtpqg_KgHxFhEdD_o.cer (hash: lK432uTKMzI/MWDWDCT/5eSJfdDwnCex4YbKV+8mZxI=)
7: NaP2H8Xf8ZLB2Qx0q4LHol1-Ftg.cer (hash: okjzU3E4UBevhxAwJ+/GBUGWv9CrjBdiXIkVX/kNLUw=)
8: Tidv6UgTpdcIr4ZtYdYhNA_AUbI.cer (hash: wPpie+ThAR/1TthkCM7hgEd/wJa4M0QWrfReez52vcc=)
9: yNpkCWcTSBB928ixg_VavykxJVY.cer (hash: yeZNkJNHC+qtIscVm8AAik64XQjEl1j01cQ1Y6MWxhE=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17990 (0x4646)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 29 02:50:09 2025 GMT
Not After : Apr 5 02:50:09 2025 GMT
Subject: CN=67e75fe1-ae4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:00:40:56:3a:7e:c4:7e:da:fc:39:6b:d3:3b:
02:f9:e0:33:2d:f0:8d:52:82:0b:4a:88:59:34:97:
41:2e:b2:86:20:dc:29:f4:b1:f0:b9:bc:b4:da:59:
dd:c5:36:60:28:a6:c6:06:18:3b:c4:84:59:69:7b:
ef:e8:29:25:60:02:33:f5:89:e1:35:dc:15:bb:58:
88:b2:c9:32:9b:d4:3a:82:ea:b1:54:a3:34:52:d6:
52:76:3f:29:fc:3c:e6:6c:f2:b4:85:69:b5:df:93:
fe:37:24:c0:43:70:94:90:38:ec:71:a8:27:4a:52:
8f:ab:ff:48:7a:7a:5e:06:05:a6:bf:69:a7:7d:e3:
8b:e7:86:0d:cd:89:1d:48:89:1f:3c:87:a3:7a:3c:
ea:fd:9e:74:14:49:7e:98:23:03:26:64:70:90:9b:
4b:f2:24:19:bc:6f:b6:a7:8e:8f:9a:21:0b:47:7b:
17:a2:3b:3e:c2:a7:dc:5b:33:09:4e:54:2f:16:f9:
97:9d:41:6a:b7:e4:26:59:ba:1e:46:16:c0:ae:1b:
d8:a5:75:1b:70:65:a7:a0:16:80:32:da:fb:c4:69:
e8:1b:e9:d8:c4:cb:bd:2c:fd:0c:50:a4:ef:e8:a6:
d6:41:e2:0c:27:b4:ea:79:d0:2a:ff:7f:77:28:22:
98:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B4:70:71:EC:64:09:C2:16:61:69:E8:21:8C:2A:0D:08:80:F7:C3
X509v3 Authority Key Identifier:
keyid:34:8F:9B:9B:92:A7:2C:CF:D3:6F:3C:70:F3:56:75:73:3C:C8:EA:22
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
72:e4:65:49:52:04:71:25:40:ce:49:a9:91:e5:74:82:bd:ce:
f6:c9:e5:0e:1b:e1:f1:c3:56:a3:cf:81:19:34:75:7d:3b:f0:
5b:1a:9e:c2:a0:d7:9b:17:9c:22:0a:5c:64:7d:1e:41:84:51:
fe:97:f1:5a:ac:53:e5:1c:98:23:26:30:86:b7:a7:25:ad:b7:
a8:38:e0:a8:ed:1f:b3:d4:1d:5b:4f:a5:66:2c:68:37:09:70:
27:4e:cb:77:9b:58:0c:46:7b:c5:ea:f3:6e:4e:a9:24:49:4a:
80:ad:65:55:2d:08:2d:a7:1d:7e:a4:11:67:22:91:62:55:04:
6d:32:74:d5:4b:d6:77:e1:84:1f:2d:5c:fb:5f:d5:4f:8a:f3:
df:b4:4f:a0:62:29:e9:73:ed:9d:ed:5d:8e:d6:88:39:d0:5a:
63:98:7f:ab:02:45:7c:91:0a:28:e0:5f:ed:93:d5:da:c5:d4:
d9:61:c3:c7:05:79:a2:63:44:c5:17:5b:d4:a5:e6:7a:57:bf:
dc:5a:a5:88:bf:92:6b:d8:2c:0b:b6:ac:63:13:54:c5:13:67:
54:83:d2:74:8e:c1:01:99:9e:cd:54:a5:fb:40:42:bc:17:12:
dd:c4:14:49:ca:56:b8:82:fd:c9:20:34:0a:7b:a7:83:c1:45:
14:80:96:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 15:27:31 2025 by rpki-client